IT Security Incidents

Stay informed about real-world incidents that impact organizations and individuals. Get insights into data breaches, hacking attempts, and distributed denial-of-service (DDoS) attacks, along with expert analysis and recommended countermeasures.

Cybercriminals Telephoning Customer Service Representatives to ask them to Open Malware Infected Attachments

The risk of malware and ransomware infections can be reduced by training staff to avoid opening file attachments received from unfamiliar email accounts. Despite this being common practice, a well known cybercriminal group has recently … Read more

Enterprise Firewalls Being Taken Down by Attackers Using ICMP Ping Floods

Researchers from the Danish telecom firm TDC have claimed that attackers have been using ICMP ping floods to carry out Denial of Service (DoS) attacks capable of removing enterprise firewalls. As opposed to standard DDoS … Read more

Exploitation of Vulnerability in Apache Struts Revealed

Cisco Talos and Apache have issued warnings to their users following the revelation of a new Apache Struts vulnerability that has been actively exploited in recent days. Cisco Talos researchers recently identified the ‘zero-day’ vulnerability … Read more

Gooligan Malware Infection compromises 1,300,000 Google Accounts

A new type of Android malware, known as ‘Gooligan’ has been discovered by the Israeli based company CheckPoint which specialises in cybersecurity. According to initial reports it is already spreading at a rate which has … Read more

108 L.A. County Workers Impacted by Phishing Attack – 756K Affected

The County of Los Angeles took some time to publicize it was the sufferer of a big phishing attack, particularly bearing in mind the attack was found out within a day of the May, 2016 … Read more

OCR Alerts Protected Bodies of Danger of DDoS Attacks

Over the past few weeks, there has been a rise in Denial of Service (DOS) and Distributed Denial of Service (DDoS) assaults. The assaults include inundating systems with requests and information to affect those systems … Read more

Seguin Dermatology Declares Ransomware Assault ePHI Access Possible

Texas-centered Seguin Dermatology has begun notifying patients of a ransomware assault that has likely led to electronic protected health information being wrongly accessed. The assault happened around or on September 12, 2016, and affected a … Read more

Operations Annulled After 3 UK Hospitals are Paralyzed by Computer Infection

Cyberattacks on healthcare suppliers in the U.S. are happening at a frightening speed; nevertheless, it’s not just U.S healthcare companies which are targeted by cybercriminals. During the weekend, a big security case was informed by … Read more

Analysis Emphasizes Danger of PHI Revelation from Unencrypted Healthcare Pagers

Several healthcare suppliers have now changed from pagers to more safe types of communication. Safe text messaging platforms permit safeguarded health info to be communicated swiftly and efficiently between doctors and care team associates. Those … Read more

OCR Alerts of FTP Weaknesses in NAS Appliances

The Division of Health and Human Services OCR has released a notice to HIPAA protected bodies as well as their business associates of a surge in assaults on network attached storage (NAS) appliances. The appliances … Read more

Main Ohio Urology Consortium Notifies 300K Patients of PHI Thievery

Patients of Central Ohio Urology Consortium whose safeguarded health information was thieved and displayed live in August have now been informed of the safety break. Although it’s not sure precisely when the hack happened, the … Read more

New Review Indicates Data Break Cost is $200K for each Happening

A new review indicates the cost of deciding breaks of confidential information is much lower than earlier thought. The charges are so little that for several firms there is a slight inducement to finance more … Read more

North Ottawa Medical Group Alerts 22K of Bizmatics Break

North Ottawa Medical Group has alerted 22K of its sick persons that they have been affected by a malevolent program contagion which was found out by its Electronic Medical Record management firm, Bizmatics. North Ottawa … Read more

Texas Health and Human Services Commission Informs 600 of PHI Revelation

A storage servicer has notified the loss of 15 storing packets to the Texas Health and Human Services Commission (HHSC). The packets were stowed at 3 Iron Mountain services in Fort Worth, Dallas, as well … Read more

Kern County Mental Health Division Publicizes Secrecy Break

Kern County Mental Health Division, CA. (KCMH) has informed a break of safeguarded health information that happened during the transfer of its administrative division in April 2016. The break included the revelation of a partial amount … Read more

Up to 400K Prisoners’ SSNs and PHI Revealed

Up to 400K existing and earlier inmates imprisoned by the California Department of Rehabilitation and Corrections during 1996 to 2014 have possibly had their medical data, Social Security numbers, and personally identifiable information displayed. Last … Read more

Verity Health System Prey of Phishing Assault

Verity Health System has become prey to a phishing assault leading to confidential worker data being transmitted out of the company. Employee names, Social Security numbers, addresses, money earned in the fiscal year, as well … Read more

Illinois Data Break Notice Law Renewed

Illinois data break notice rule has been updated, widening the meaning of private information and modifying the timescale for alerting the Attorney General of data breaks. A break notice will have to be released if an … Read more

Florida Medical Clinic Informs 1K Patients of Secrecy Breach

Florida Medical Clinic, PA., has informed 1K patients that their outstanding balance reports were revealed online as a consequence of a misconfiguration of its Patient Portal. Outstanding balance reports of a few patients, between November … Read more

Anti-Malware Scan Halts Cardiac Catheterization Process

It’s imperative for anti-malware keys to be utilized to defend medical appliances, even though care should be taken when designing software. In the same way, as was lately stressed at a U.S. hospice, a misconfiguration … Read more

23000 Patients of Mayfield Clinic Receive Malware-Infected Email

The Mayfield Clinic of Cincinnati patients received an email in February that contained a malevolent attachment which transferred ransomware onto their machines. The entrance on the HHS’ OCR infringement portal shows 23,341 patients received the … Read more

California Ransomware Law Approved by State Senate Commission

Bob Hertzberg, Californian Senator, introduced a new proposal (Senate Proposal 1137) in February that suggests a modification to the punitive policy in California in order to make it an offense to intentionally fix ransomware on … Read more

Mercy Hospital in Iowa Noticed Data-Capturing Virus

As per a statement issued by the hospital late previous week, a computer virus might have permitted hackers to get the data of roughly 15,000 sick persons of Mercy Iowa City. Sick persons began to … Read more

2 More Californian Hospital Ransomware Assaults Informed

2 more hospitals in South of California have informed being harmed with ransomware. The Victorville’s Desert Valley Hospital as well as Chino Valley Medical Center, which are both managed by Prime Healthcare, were hit on … Read more

21st Century Oncology Informs 2.2M Patients of Hacking Case

At 21st Century Oncology, a hacker accessed a patient database having Social Security numbers and insurance data of patients in October. The case isn’t of the magnitude of the breaks at Primera Blue Cross, Excellus BCBS, … Read more

Rogue Worker Thieves 24000 Jackson Health System Patient Files

A Jackson Health System worker is accused of thieving about 24,000 patient files over a duration of 5 years. The unit secretary of the hospital has been put on administrative leave till the end of … Read more

St. Luke’s Cornwall Hospital Informs Data Exposure to 29K Patients

St. Luke’s Cornwall Hospital has released a media declaration providing more information on the 29,156-record data infringement that happened on October 31, 2015. The hospital has clarified that the infringement happened when an unknown person entered … Read more

Phishing Assault Borne by Brigham and Women’s and Brigham as well as Women’s Faulkner Hospitals

Boston’s Brigham and Women’s Hospital has warned patients of a security infringement as soon as a phishing assault compromised the email account of a hospital worker. 1,009 patients have been impacted by the cyberattack.   … Read more

Latest Oregon Infringement Notification Law Becomes Effective

Companies doing business in the state of Oregon should now abide by the latest data infringement law that became effective on January 1, 2016. If a data infringement is suffered that reveals the personal information … Read more

Infringement of Washington Town Health Care District Information

Roughly 3 months after suffering an infringement of personal information, Washington Town Health Care District has tendered an infringement notification to the California Attorney General’s Office describing an infringement of personal information of Californians. The … Read more

Cottage Health System Security Inspection Exposes 11K-Record Data Break

On Tuesday Cottage Health System informed its 11,000 sick persons to instruct them that a few of their PHIs were revealed as a consequence of a server occurrence that happened in October 2015. For two … Read more

Connecticut OIG Makes $90K Pact with Hartford Hospital and BA Over 2012 Laptop Theft

Hartford Hospital as well as one of its BAs, EMC Corporation (EMC), have contracted to a settlement with the Connecticut OIG on the 2012 thievery of a laptop having the unencrypted files of 8,883 Connecticut inhabitants. Hartford … Read more

Bermuda Electricity Company Customers Targeted with Ransomware

Citizen of Bermuda and holiday home owners have been warned to be diligent following the identification of a new BELCO email scam. Guidance has now been issued by the company after some customers were targeted … Read more

Apple Malware Attack Affects 225,000 Device Owners

Apple device security is particularly robust, yet the company’s operating systems are far from impregnable as a recent Apple malware attack has shown. Apple device users have recently been targeted by hackers believed to be … Read more

Hacking Peaks List of 2015 Data Break Reasons

A study of break details for the duration of the initial 5 months of the year demonstrates that the main reason of 2015 HIPAA breaks is still hacking, which keep on to reveal patient health … Read more

Evansville Medical Center Hack Reveals HIPAA Files of 4,400

Hackers have accessed the E-mail accounts of a lot of workers of the St. Mary’s Medical Center in Evansville, Indiana, leading in the PHI of roughly 4,400 patients potentially being revealed. Randy Capehart, a spokesperson … Read more

Wellpoint Approves $1.7 Million Payment for HIPAA Breaches

Wellpoint is among the leading providers of Affiliated Health Policies, with nearly 36 million policy holders throughout the United States. Fraction of its databank of policy holders was accessible to illegal persons between October 23, … Read more

HIPAA Violation at Froedtert Health Reveals 43,000 Patient Documents

Milwaukee centered healthcare provider, Froedtert Health, has declared it has experienced a data violation that may possibly have impacted as many as 43,000 patients as a consequence of a computer virus that had contaminated an … Read more

441-Patient HIPAA Infringement Leads to 50K Fine

According to Health Insurance Portability and Accountability Act (HIPAA) rules, healthcare companies are needed to inform data infringements involving over 500 people to the Office of Civil Rights and fiscal fines apply for HIPAA breaches; … Read more

Blue Cross Blue Shield to Reimburse HHS $1.5M for HIPAA Infringement

The Office for Civil Rights has accomplished its first implementation action developing from the HITECH Infringement Notice Rule and has penalized Blue Cross Blue Shield of Tennessee (BCBST) for breaching the Security and Privacy Regulations … Read more

Health Net Penalized 55K for Late HIPAA Infringement Notice

Health Net, Connecticut-based insurance firm is to pay a penalty of $55,000 to the Office of Vermont Attorney General for HIPAA disobedience and failing to safeguard the information of the state’s policyholders after a HIPAA … Read more